CVE-2024-45490

ADVISORY - nist

Summary

An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length for XML_ParseBuffer.

EPSS Score⁠: 0.0007 (0.223)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-190⁠

Integer Overflow or Wraparound

CWE-611⁠

Improper Restriction of XML External Entity Reference

ADVISORY - redhat

CWE-190⁠

Integer Overflow or Wraparound

Impacted images

Advisories

NIST

CREATED

11 months ago

UPDATED

5 months ago

ADVISORY IDCVE-2024-45490⁠

EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-190⁠CWE-611⁠

CVSS SCORE

7.5high

Alpine

CREATED

11 months ago

UPDATED

1 day ago

ADVISORY IDCVE-2024-45490⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Debian

CREATED

11 months ago

UPDATED

16 days ago

ADVISORY IDCVE-2024-45490⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Ubuntu

CREATED

11 months ago

UPDATED

22 days ago

ADVISORY IDCVE-2024-45490⁠

EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

7.5medium

Alma

CREATED

11 months ago

UPDATED

11 months ago

ADVISORY IDALSA-2024:6754⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

Alma

CREATED

10 months ago

UPDATED

10 months ago

ADVISORY IDALSA-2024:6989⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

Amazon

CREATED

7 months ago

UPDATED

7 months ago

ADVISORY IDALAS-2025-1953⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

Amazon

CREATED

8 months ago

UPDATED

8 months ago

ADVISORY IDALAS2-2024-2710⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

Amazon

CREATED

9 months ago

UPDATED

9 months ago

ADVISORY IDALAS2023-2024-759⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

Red Hat

CREATED

11 months ago

UPDATED

5 months ago

ADVISORY IDCVE-2024-45490⁠

EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-190⁠

CVSS SCORE

7.5medium

Rocky

CREATED

10 months ago

UPDATED

5 months ago

ADVISORY IDRLSA-2024:6754⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Alow

Rocky

CREATED

10 months ago

UPDATED

5 months ago

ADVISORY IDRLSA-2024:6989⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Alow

Oracle

CREATED

11 months ago

UPDATED

11 months ago

ADVISORY IDELSA-2024-6754⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

Oracle

CREATED

10 months ago

UPDATED

10 months ago

ADVISORY IDELSA-2024-6989⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium